Security Command Center Enterprise: Step 2.4 - Vis...

kasey · ‎12-27-2024

Actions

Cloud Compliance Standards

This powerful tool helps you monitor compliance with security standards and ensures alignment with controls to meet your regulatory requirements.

Steps

Users will see the Compliance dashboard with the following Cloud Compliance Standards at the top of the dashboard:
1. Google Cloud
2. Amazon Web Services
3. Microsoft Azure
In each Cloud Compliance Standard, users will see displayed:
1. Total Compliance Standards Count
2. Findings Affect Compliance Count
Each Cloud Compliance Standard will have their own section with the Compliance Standard Count and a Details box for each Compliance Standard type listed, containing the following information:
1. Name of Compliance Standard Type
2. Passing Rate
3. View Details link
The Compliance details page shows which controls are non-compliant, lists findings that describe the violations, and allow a compliance report to be exported.
Users will select a Date and Compliance Standard from the menus at the top of the page to get started.
Next to the Date Menu, users can select the Latest button to select the latest Date.
Next to the Compliance Standard Menu, users can select the Export Report button to select Export a Report which will appear in the Downloads section of their page.
In the next section users will see the selected Compliance Standard Control Over Time graph, to view the breakdown of their Controls by Compliance status. Users can adjust the time period to view the state of their controls over time, by selecting the Time Period.
In the next section, users will see a Filters options, that will show the following Filter options when selected:
1. Control
2. Status
3. Rule
4. Severity
5. Findings count
Below the Filters option, users will see the Compliance Details list with the following columns:
1. Control
2. Status
3. Rule
4. Severity
5. Findings count
To the left of each Compliance Details selection in the list is a Toggle Node.
Each Compliance Details selection with a Toggle Node will display the Rule and Severity, when the Toggle Node is selected.
Users can click any highlighted Rule link in the Compliance Details selection to view Compliance Details in the Google SCCE Cloud Platform’s Findings feature. This page will include Compliance Details Query Results.
Examples of Google Cloud Compliance Standards available:
1. CIS Controls 8.0
2. CIS Google Cloud Platform Foundation 1.0
3. CIS Google Cloud Platform Foundation 2.0
4. CIS Kubernetes Benchmark 1.5.1
5. Cloud Controls Matrix 4
6. HIPAA
7. ISO 27001 2022
8. NIST 800-53 R4
9. OWASP 2021
10. PCI DSS 4.0
Examples of Amazon Web Services Compliance Standards available:
1. CIS Amazon Web Services Foundations 2.0.0
2. CIS Controls 8.0
3. Cloud Controls Matrix 4
4. HIPAA
5. ISO 27001 2022
6. NIST 800-53 R5
7. NIST CSF 1.0
8. PCI DSS 3.2.1
9. PCI DSS 4.0
10. SOC2 2017

Relevant Documentation Links

[All Steps] https://cloud.google.com/security-command-center/docs/compliance-management

Steps Users will see the Compliance dashboard with the following Cloud Compliance Standards at the top of the dashboard: Google Cloud Amazon Web Services Microsoft Azure In each Cloud Compliance Standard, users will see displayed: Total Compliance Standards Count Findings Affect Compliance Count Each Cloud Compliance Standard will have their own section with the Compliance Standard Count and a Details box for each Compliance Standard type listed, containing the following information: Name of Compliance Standard Type Passing Rate View Details link The Compliance details page shows which controls are non-compliant, lists findings that describe the violations, and allow a compliance report to be exported. Users will select a Date and Compliance Standard from the menus at the top of the page to get started. Next to the Date Menu, users can select the Latest button to select the latest Date. Next to the Compliance Standard Menu, users can select the Export Report button to select Export a Report which will appear in the Downloads section of their page. In the next section users will see the selected Compliance Standard Control Over Time graph, to view the breakdown of their Controls by Compliance status. Users can adjust the time period to view the state of their controls over time, by selecting the Time Period. In the next section, users will see a Filters options, that will show the following Filter options when selected: Control Status Rule Severity Findings count Below the Filters option, users will see the Compliance Details list with the following columns: Control Status Rule Severity Findings count To the left of each Compliance Details selection in the list is a Toggle Node. Each Compliance Details selection with a Toggle Node will display the Rule and Severity, when the Toggle Node is selected. Users can click any highlighted Rule link in the Compliance Details selection to view Compliance Details in the Google SCCE Cloud Platform’s Findings feature. This page will include Compliance Details Query Results. Examples of Google Cloud Compliance Standards available: CIS Controls 8.0 CIS Google Cloud Platform Foundation 1.0 CIS Google Cloud Platform Foundation 2.0 CIS Kubernetes Benchmark 1.5.1 Cloud Controls Matrix 4 HIPAA ISO 27001 2022 NIST 800-53 R4 OWASP 2021 PCI DSS 4.0 Examples of Amazon Web Services Compliance Standards available: CIS Amazon Web Services Foundations 2.0.0 CIS Controls 8.0 Cloud Controls Matrix 4 HIPAA ISO 27001 2022 NIST 800-53 R5 NIST CSF 1.0 PCI DSS 3.2.1 PCI DSS 4.0 SOC2 2017 Relevant Documentation Links [All Steps] https://cloud.google.com/security-command-center/docs/compliance-management

Next Step: Security Command Center Enterprise: Step 3 - Investigation Overview

Previous Step: Security Command Center Enterprise: Step 2.3 - Visualization | Vulnerabilities

The Google Cloud Security Community will be in read-only mode July 16 - July 22 as we migrate platforms.

Read more and check out our FAQ.